CVE-2018-8159
Description
An elevation of privilege vulnerability exists when Microsoft Exchange Outlook Web Access (OWA) fails to properly handle web requests, aka Microsoft Exchange Elevation of Privilege Vulnerability. This affects Microsoft Exchange Server.
Risk Information
Base Score
5.4
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
EPSS Score
Exploitation Probability
2.379
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Microsoft Exchange Memory Corruption Vulnerability for Exchange Server 2013 CU19 (KB4092041) | Windows |
| Microsoft Exchange Memory Corruption Vulnerability for Exchange Server 2013 CU20 (KB4092041) | Windows |
| Microsoft Exchange Memory Corruption Vulnerability for Exchange Server 2013 SP1 (KB4092041) | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-24635 | Security Update For Exchange Server 2013 CU19 (KB4092041) |
| PATCH-24636 | Security Update For Exchange Server 2013 CU20 (KB4092041) |
| PATCH-24634 | Security Update For Exchange Server 2013 SP1 (KB4092041) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234